i pause at the example of a massive disruption of the power grid is a slim possibility because of the nature of the network itself. it doesn't mean we shouldn't address the policy levels of the situational awareness, that's critical from the due diligence point of view, ect., but it's not the only thing required to introduce security. >> do you have suggestions on how we get that capability? >> yes, i do. one of the things we overlook is when discussions happen about the ability of states to work with private sector over cyberspace and res of -- and issues of privacy, we forget the issue of cyberspace, the telecommunications carrier is the queen. this is where infrastructure, data, and network all come together. we forget telecommunications is the most regulated industry we have. our ability to incentivize telecommunications carriers to detect anomalies at scale that would essential hi address 90% of what we see as malfeasance in cyberspace is quite possible, but we have not taken that step. >> rafal, pushing back on the attribution question that you don't see as that big of a challen